ps security data column includes AppArmor confinement mode in 16.04
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
procps (Ubuntu) |
Won't Fix
|
Low
|
Unassigned |
Bug Description
In Xenial, running linux 4.4.0-15-generic and procps 2:3.3.10-4ubuntu2, I see that the security data column has changed to displaying the AppArmor confinement mode:
$ ps wZ $(pidof cups-browsed)
LABEL PID TTY STAT TIME COMMAND
/usr/sbin/
This is different than what is displayed in 15.10:
$ ps wZ $(pidof cups-browsed)
LABEL PID TTY STAT TIME COMMAND
/usr/sbin/
There was a large AppArmor kernel change in Xenial's 4.4.0-15-generic so to rule that out, I booted into an earlier Xenial kernel and saw the same issue:
$ uname -a
Linux sec-xenial-i386 4.4.0-7-generic #22-Ubuntu SMP Thu Feb 18 20:50:09 UTC 2016 i686 i686 i686 GNU/Linux
$ ps wZ $(pidof cups-browsed)
LABEL PID TTY STAT TIME COMMAND
/usr/sbin/
The apparmor /proc/ interface has always included the mode info, so the change must be in how ps handles the security label